AuroraMiddleware/mbedtls
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
3,946 Commits 1 Branch 0 Tags 61 MiB
f9c599cd8a
Commit Graph

3946 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Manuel Pégourié-Gonnard
f9c599cd8a Bump yotta patch version 2015-09-03 16:45:26 +02:00
Simon Butcher
2d43479ac5 Merge branch 'development' of ssh://github.com/ARMmbed/mbedtls into development 2015-09-03 13:08:55 +01:00
Simon Butcher
1a66081d7f Merge branch 'iotssl-457-badtail' into development 2015-09-03 13:08:09 +01:00
Simon Butcher
52754594b6 Merging iotssl-457-badtail with development branch 2015-09-03 13:06:01 +01:00
Manuel Pégourié-Gonnard
f851f14214 Moe top-level Readme to markdown 
For consistency
 2015-09-03 13:29:45 +02:00
Simon Butcher
ed51594337 Merge pull request #265 from ARMmbed/iotssl-460-bugfixes 
Iotssl 460 bugfixes
 2015-09-02 23:36:36 +01:00
Simon Butcher
1662c4a338 Merge pull request #264 from ARMmbed/misc 
Misc improvements
 2015-09-02 17:51:23 +01:00
Manuel Pégourié-Gonnard
f459a0f5f2 Bump yotta patch version 2015-09-02 10:24:46 +02:00
Manuel Pégourié-Gonnard
b2beb84be6 Changelog entry fro the previous commit 2015-09-01 19:37:32 +02:00
Manuel Pégourié-Gonnard
f81ee2eba8 Add NULL checks to top-level SSL functions 
On normal use these should never be useful, but if the application has issues,
it's best for us to return an error than to crash.
 2015-09-01 17:43:40 +02:00
Manuel Pégourié-Gonnard
fdbdd72b8b Skip to trusted certs early in the chain 
This helps in the case where an intermediate certificate is directly trusted.
In that case we want to ignore what comes after it in the chain, not only for
performance but also to avoid false negatives (eg an old root being no longer
trusted while the newer intermediate is directly trusted).

closes #220
 2015-09-01 17:24:42 +02:00
Manuel Pégourié-Gonnard
560fea3767 Add tests for verify callback 
As we're about to change the chain construction logic, we want to make sure
the callback will still be called exactly when it should, and not on the
(upcoming) ignored certs in the chain.
 2015-09-01 17:24:42 +02:00
Manuel Pégourié-Gonnard
4f202badec Document the three libraries in Readme 
see #266
 2015-09-01 10:27:16 +02:00
Manuel Pégourié-Gonnard
c881ca8502 Document how to build shared libs with CMake 
Also updated
https://tls.mbed.org/kb/compiling-and-building/how-do-i-build-compile-mbedtls

closes #267
 2015-09-01 10:08:28 +02:00
Manuel Pégourié-Gonnard
5f5e0ec3f1 Improve mbedtls_ssl_write() documentation 2015-08-31 20:47:04 +02:00
Manuel Pégourié-Gonnard
a2cda6bfaf Add mbedtls_ssl_get_max_frag_len() 
This is not very useful for TLS as mbedtls_ssl_write() will automatically
fragment and return the length used, and the application should check for that
anyway, but this is useful for DTLS where mbedtls_ssl_write() returns an
error, and the application needs to be able to query the maximum length
instead of just guessing.
 2015-08-31 20:47:04 +02:00
Manuel Pégourié-Gonnard
7b23c51595 Print "thread ID" in debug messages 
closes #218
 2015-08-31 16:17:33 +02:00
Manuel Pégourié-Gonnard
d68434efba Disable some tests with valgrind 
Tends to cause spurious failures on buildbots due to peer timing out.
Anyway, those tests are mainly for interop, any memory error is most likely
catched by some earlier self-op test. (Also, we'll run these tests with ASan
anyway.)
 2015-08-31 12:48:22 +02:00
Manuel Pégourié-Gonnard
bb83844a1d Clarify that there are two SSL I/O buffers 2015-08-31 12:46:01 +02:00
Manuel Pégourié-Gonnard
824ba72442 Only use -Wshadow with GCC 4.8 or higher 
Before that, we get useless warnings about local variables shadowing extern
functions, which means we can't have a local variable called index when we
include string.h.

https://lkml.org/lkml/2006/11/28/239
https://gcc.gnu.org/gcc-4.8/changes.html
 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
cf9ab63863 Fix error reporting in pkey/pk_* programs 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
ce7a08ba49 Fix more comments/outputs in verify programs 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
102a620c9a Fix hash buffer size in pkey programs 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
d224ff1f63 Change default RSA key size in rsa_genkey 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
1d8f2da7df Fix comments about filenames in some programs 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
d74c697035 Fix memory corruption in rsa sign/verify programs 
We have no guarantee there is enough room in the argv strings.

Fixes #210
 2015-08-31 10:34:27 +02:00
Manuel Pégourié-Gonnard
8b2641d36f Fix warning with MD/SHA ALT implementation 
fixes #239
 2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
c6b5d833ec Fix handling of long PSK identities 
fixes #238
 2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
ea35666f50 Fix -Wshadow warnings 
Checked that it is supported by gcc 4.2.1 (FreeBSD 9).

fixes #240
 2015-08-31 10:34:26 +02:00
Manuel Pégourié-Gonnard
4d04cdcd12 Fix RSA mutex fix 
Once the mutex is acquired, we must goto cleanup rather that return.
Since cleanup adjusts the return value, adjust that in test cases.

Also, at cleanup we don't want to overwrite 'ret', or we'll loose track of
errors.

see #257
 2015-08-31 09:31:55 +02:00
Manuel Pégourié-Gonnard
6a6619b24b Fix last edit 2015-08-31 09:29:08 +02:00
Manuel Pégourié-Gonnard
435314d99c Merge pull request #263 from iriark01/patch-6 
Small edit
 2015-08-31 09:24:19 +02:00
Irit Arkin
9cdd0d55f2 Small edit 2015-08-28 09:27:57 +01:00
Manuel Pégourié-Gonnard
cbee3f76f6 Merge pull request #262 from iriark01/patch-5 
Small edit
 2015-08-27 17:10:44 +02:00
Manuel Pégourié-Gonnard
fe3fda5de0 Merge pull request #261 from iriark01/patch-4 
Small edit
 2015-08-27 17:10:40 +02:00
Manuel Pégourié-Gonnard
2823661550 Merge pull request #260 from iriark01/patch-3 
Small edit
 2015-08-27 17:10:34 +02:00
Manuel Pégourié-Gonnard
c816476a54 Merge pull request #259 from iriark01/patch-2 
Very small edit
 2015-08-27 17:10:27 +02:00
Irit Arkin
36936bff6e Small edit 2015-08-27 15:57:54 +01:00
Irit Arkin
fb40410547 Small edit 2015-08-27 15:56:44 +01:00
Irit Arkin
c4d9d32b62 Small edit 2015-08-27 15:47:00 +01:00
Irit Arkin
cd8c0fbf60 Very small edit 2015-08-27 15:44:11 +01:00
Manuel Pégourié-Gonnard
1385a289f4 Fix possible mutex lock/unlock mismatch 
fixes #257
 2015-08-27 11:30:58 +02:00
Manuel Pégourié-Gonnard
3dce9ec3af Sync yotta and general readme again 2015-08-27 10:07:09 +02:00
Manuel Pégourié-Gonnard
9acf88bdff Ship license files with the yotta module 2015-08-25 10:58:24 +02:00
Simon Butcher
5719aa121c Merge pull request #255 from iriark01/patch-1 
Approved for merge.
 2015-08-24 15:34:19 +01:00
Irit Arkin
4d8edd544c Edited 
Not a major edit
 2015-08-24 13:50:25 +01:00
Manuel Pégourié-Gonnard
d0422a45f1 Bump patch version for yotta 2015-08-21 14:09:38 +02:00
Manuel Pégourié-Gonnard
fe626138e8 Add proper destructor for HelloHTTPS 
Just as a matter of principle
 2015-08-20 12:00:58 +02:00
Manuel Pégourié-Gonnard
324fc02b1a Synchronise top-level and yotta READMEs 
And fix two typos while at it
 2015-08-20 11:51:53 +02:00
Simon Butcher
a150050555 Merge branch 'development' of ssh://github.com/ARMmbed/mbedtls into development 
Conflicts:
	yotta/data/example-authcrypt/README.md
	yotta/data/example-benchmark/README.md
	yotta/data/example-hashing/README.md
	yotta/data/example-selftest/README.md
	yotta/data/example-tls-client/README.md
 2015-08-19 20:29:31 +01:00